Route Origin Authorization
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/0U4vUjHwG2I0G0cNDPg1oBClQXw.roa
File: 0U4vUjHwG2I0G0cNDPg1oBClQXw.roa (raw, json)
Hash identifier: bJzRFDbxbIihNI1ctr0n61q91X4NwXIRhkePmNvwBMU=
Subject key identifier: D1:4E:2F:52:31:F0:1B:62:34:1B:47:0D:0C:F8:35:A0:10:A5:41:7C
Certificate issuer: /CN=c9d57447e3420b853875b6fa40372aade3192ca2
Certificate serial: 018AF577F288B9B9D12E6AB87B99D0EA4ED1
Authority key identifier: C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/0U4vUjHwG2I0G0cNDPg1oBClQXw.roa
Signing time: Tue 03 Oct 2023 12:16:33 +0000
ROA not before: Tue 03 Oct 2023 12:16:33 +0000
ROA not after: Mon 01 Jul 2024 00:00:00 +0000
asID: 60683
IP address blocks: 77.92.152.0/24 maxlen: 24
Validation: Failed, certificate revoked on Wed 04 Oct 2023 12:06:57 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:8a:f5:77:f2:88:b9:b9:d1:2e:6a:b8:7b:99:d0:ea:4e:d1
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c9d57447e3420b853875b6fa40372aade3192ca2
Validity
Not Before: Oct 3 12:16:33 2023 GMT
Not After : Jul 1 00:00:00 2024 GMT
Subject: CN=d14e2f5231f01b62341b470d0cf835a010a5417c
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:b5:0c:7a:68:48:84:ff:f4:a2:14:d0:1c:48:80:
3d:d1:41:4a:14:23:b6:41:a3:72:6c:22:e2:86:2f:
a8:3f:c9:c7:30:b3:1b:8d:34:a2:7b:a0:cb:6c:7c:
94:91:3a:55:ca:e1:2b:db:2e:15:65:01:75:a9:70:
81:60:27:66:aa:a1:45:54:f9:ad:15:ff:78:2a:ff:
e2:48:cd:03:1f:e3:52:a8:de:29:36:99:38:51:29:
10:67:26:95:1a:6b:a0:a9:e2:8d:18:83:3a:ee:21:
d9:53:d9:4a:2c:b6:e1:b2:24:e7:d0:64:26:65:b2:
52:5c:37:e8:de:35:45:75:ca:53:5b:14:51:24:d5:
2f:79:04:a5:18:8c:73:0b:00:da:4b:bd:b2:98:3d:
0d:3f:55:55:24:1d:f9:c2:9d:59:3b:83:52:46:83:
74:19:a7:26:21:7b:f9:36:4e:7f:bf:07:52:1c:6c:
ac:12:b9:1b:d2:7a:fd:c2:5e:f5:5a:62:0c:35:f5:
38:aa:7f:31:75:31:e0:b8:cc:9d:66:67:53:ef:db:
8a:8f:2e:25:3c:21:e2:62:49:2c:73:11:64:33:a4:
f1:ba:1b:f7:b6:15:37:c1:3a:5e:c9:1f:e4:15:d7:
ec:11:52:c4:60:10:9a:dc:44:e7:04:8b:e6:dc:de:
bc:79
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D1:4E:2F:52:31:F0:1B:62:34:1B:47:0D:0C:F8:35:A0:10:A5:41:7C
X509v3 Authority Key Identifier:
keyid:C9:D5:74:47:E3:42:0B:85:38:75:B6:FA:40:37:2A:AD:E3:19:2C:A2
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/ydV0R-NCC4U4dbb6QDcqreMZLKI.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/0U4vUjHwG2I0G0cNDPg1oBClQXw.roa
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/4d/1586fd-fd2c-41f8-8fe9-4e198f0a6013/1/ydV0R-NCC4U4dbb6QDcqreMZLKI.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4:
77.92.152.0/24
Signature Algorithm: sha256WithRSAEncryption
a6:34:07:4b:a8:a4:02:a1:08:b7:06:cd:0d:9f:44:08:14:3f:
cf:e0:bd:87:4b:4a:ba:9e:6b:c0:ac:c8:c4:87:1d:c0:b1:ba:
f0:94:4a:62:8e:b7:90:3a:96:47:13:b8:d9:df:9e:54:57:a6:
85:9c:7a:95:ad:be:39:08:9c:0e:90:f9:18:a0:c0:e9:08:9e:
7f:ff:82:27:fe:91:12:67:8e:dd:d2:9c:c2:39:11:84:00:db:
48:93:7d:2d:21:47:26:77:8d:18:69:d1:e3:e5:0a:69:c6:44:
17:2f:29:68:ee:f4:2f:a2:97:11:f9:6a:dd:69:8b:94:84:33:
1b:b6:93:8b:e5:b2:5e:d6:46:36:06:cb:c7:e9:d5:1b:8f:2a:
76:6b:e0:0d:87:7f:aa:f7:47:22:2d:a4:93:19:9f:8e:f2:81:
46:29:d6:5d:b5:ac:bf:8d:86:9d:8f:b4:ad:ea:cf:1e:6e:78:
68:54:26:92:9b:d5:1c:dc:7c:9b:b7:4c:08:dd:97:e5:4a:c0:
e4:1a:fa:61:cb:9b:b7:26:33:73:86:06:9c:8e:a3:55:ee:12:
d4:2f:6b:9d:03:2a:12:58:5e:18:fb:2a:d3:e7:fd:b2:df:5b:
b8:7c:94:ef:08:b0:ff:d9:12:a3:fd:f6:9d:85:f6:9d:3f:ab:
a7:31:ad:0b
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 17:28:43 2024 by rpki-client on console-fra.rpki-client.org